CVE-2024-1086
- EPSS 28.06%
- Veröffentlicht 31.01.2024 13:15:10
- Zuletzt bearbeitet 27.10.2025 17:06:37
A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The nft_verdict_init() function allows positive values as drop error within the hook verdict, and hence the n...
CVE-2024-0564
- EPSS 0.62%
- Veröffentlicht 30.01.2024 15:15:08
- Zuletzt bearbeitet 25.11.2024 09:15:05
A flaw was found in the Linux kernel's memory deduplication mechanism. The max page sharing of Kernel Samepage Merging (KSM), added in Linux kernel version 4.4.0-96.119, can create a side channel. When the attacker and the victim share the same host ...
CVE-2024-23307
- EPSS 0.59%
- Veröffentlicht 25.01.2024 07:15:09
- Zuletzt bearbeitet 12.05.2026 12:16:17
Integer Overflow or Wraparound vulnerability in Linux Linux kernel kernel on Linux, x86, ARM (md, raid, raid5 modules) allows Forced Integer Overflow.
CVE-2024-22099
- EPSS 0.62%
- Veröffentlicht 25.01.2024 07:15:08
- Zuletzt bearbeitet 12.05.2026 12:16:17
NULL Pointer Dereference vulnerability in Linux Linux kernel kernel on Linux, x86, ARM (net, bluetooth modules) allows Overflow Buffers. This vulnerability is associated with program files /net/bluetooth/rfcomm/core.C. This issue affects Linux kerne...
- EPSS 0.25%
- Veröffentlicht 23.01.2024 11:15:08
- Zuletzt bearbeitet 21.11.2024 08:37:45
In the Linux kernel before 6.4.5, drivers/gpu/drm/drm_atomic.c has a use-after-free during a race condition between a nonblocking atomic commit and a driver unload.
CVE-2023-46343
- EPSS 0.24%
- Veröffentlicht 23.01.2024 10:15:10
- Zuletzt bearbeitet 17.06.2025 14:15:27
In the Linux kernel before 6.5.9, there is a NULL pointer dereference in send_acknowledge in net/nfc/nci/spi.c.
CVE-2024-23851
- EPSS 0.3%
- Veröffentlicht 23.01.2024 09:15:36
- Zuletzt bearbeitet 04.11.2025 19:16:55
copy_params in drivers/md/dm-ioctl.c in the Linux kernel through 6.7.1 can attempt to allocate more than INT_MAX bytes, and crash, because of a missing param_kernel->data_size check. This is related to ctl_ioctl.
CVE-2023-39197
- EPSS 0.98%
- Veröffentlicht 23.01.2024 03:15:11
- Zuletzt bearbeitet 21.11.2024 08:14:53
An out-of-bounds read vulnerability was found in Netfilter Connection Tracking (conntrack) in the Linux kernel. This flaw allows a remote user to disclose sensitive information via the DCCP protocol.
CVE-2024-0775
- EPSS 0.23%
- Veröffentlicht 22.01.2024 13:15:25
- Zuletzt bearbeitet 21.11.2024 08:47:20
A use-after-free flaw was found in the __ext4_remount in fs/ext4/super.c in ext4 in the Linux kernel. This flaw allows a local user to cause an information leak problem while freeing the old quota file names before a potential failure, leading to a u...
CVE-2021-33631
- EPSS 0.37%
- Veröffentlicht 18.01.2024 15:15:08
- Zuletzt bearbeitet 02.04.2025 18:33:53
Integer Overflow or Wraparound vulnerability in openEuler kernel on Linux (filesystem modules) allows Forced Integer Overflow.This issue affects openEuler kernel: from 4.19.90 before 4.19.90-2401.3, from 5.10.0-60.18.0 before 5.10.0-183.0.0.